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NETWORKED CONDITIONAL ACCESS MODULE 



The present invention relates to a networked conditional access module and 
methods of implementing such a module on a network. More particularly, it relates 
to the provision of a Conditional Access Subunit for an IEEE 1394 network. 

With the development of digital multi-media and in particular digital 
television, it has been proposed to provide a conditional access module. In the field 
of digital video processing, it is known to code digital video signals such that special 
processing is needed in the receiver to be able to reproduce the video signals. In 
particular, it has been proposed to provide a conditional access module which can 
perform all of the descrambling and other conditional access functions of the digital 
TV receiver- This allows conditional access and signal decoding functions to be 
separated from a host receiver, such that a generic digital TV receiver can operate 
with many different conditional access systems in different conditional access 
modules. 

To allow communication between a conditional access module and a digital 
TV receiver, a common interface has been proposed and standardized by CENELEC 
(EN50221 Common Interface Specification for Conditional Access and other Digital 
Video Broadcasting Decoder Applications). This standard Common Interface 
defines a transport stream interface in which various virtual channels are time 
multiplexed and a command interface over which various additional command data 
are sent The common interface thus allows connection of a conditional access 
module to a digital TV receiver or indeed any other digital video device. 

As a basis for the present invention, it is now recognised that it would be 
advantageous to provide a conditional access module on a local network of digital 
multi-media devices including audio and video devices, such that the various 
functions available in the conditional access module could be provided to all of the 
devices on the network. 
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A standard has been proposed for connecting together various digital video 
devices on a local network. In particular, IEEE 1394 - 1995 is an IEEE standard for 
a high performance serial bus. It defines a bus, which will be referred to as an IEEE 
1394 serial bus, for connecting together various digital consumer audio/visual 
5 products. 

The IEEE 1394 specification defines a physical link connector, electrical 
signalling and a set of link and transaction protocols allowing the serial bus to self 
configure and carry audio, video and control information efficiently, A further set of 
10 additional protocols have also been defined to cany MPEG data and provide control 
mechanisms between different items of equipment on the IEEE 1394 serial bus. 
These protocols are defined in the specification "Digital Interface for Consumer 
Electronic Audio/Video Equipment" (EEC61883). 

1 5 The IEC6 1883 specification enables several command protocols to be used. 

One set of commands are known as audio/video control - command transactions 
(AV/C-CTS) and are specified in the AV/C Digital Interface Command Set 
Document development by the IEEE 1394 Trade Association (see AV/C Digital 
Interface Command Set Version 2.0D March 26, 1997 Audio/Video Working Group 

20 of the 1394 Trade Association). The AV/C CIS defines a command set for 

consumer and professional audio/visual equipment The AV/C CTS commands are 
carried within the FCP (Function Control Protocol) packet format defined by 
IEC61883. 

25 Aa object of the present invention is to provide means by which a conditional 

access module may be provided on an IEEE 1394 network. 

According to the present invention, there is provided a method of providing a 
Conditional Acess Module on an IEEE 1394 network, the method comprising: 
30 defining a Conditional Access Module as a Conditional Access Subunit of the 

IEEE 1394 network; 
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providing AV/C Conditional Access Commands to allow communication 
between the Conditional Access Subunit and other Subunits on the netwoxk. 

According to the present invention, there is provided a conditional access 
subunit for connection to an IEEE 1394 network, the subunit including: 

means to receive AV/C Conditional Access Commands over the IEEE 1394 
network from another subunit; and 

means to transmit AV/C responses over the IEEE 1394 network in response 
to the received AV/C Conditional Access Commands. 

According to the present invention, there is provided a subunit for use -with a 
conditional access subunit on an IEEE 1394 network, the subunit including: 

means to transmit AV/C Conditional Access Commands over the IEEE 1394 
network to the conditional access subunit; and 

means to receive AV/C responses from the conditional access subunit over 
the IEEE 1394 netwoik in response to the transmitted AV/C Conditional Access 
Commands* 

In this way, by treating the conditional access module as a subunit of the 
IEEE 1394 network and by providing conditional access commands as part of the 
AV/C command set, a conditional access module can be fully integrated on the 
network. 

Preferably, the conditional access command includes a CA enable command 
and/or a CA entitlement command. The AV/C conditional access commands may 
also include a security command. 

In this way, the CA enable command can be used to instruct the C A subunit 
as to which service is should descramble. 
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The enable command may include control commands as well as status and 
notify commands. 



The CA entitlement commands may be used to interrogate the conditional 
5 access subunit to determine what entitlement the user has to services. It may be a 
status or notify type command. 



According to the present invention, there is also provided a conditional access 
subunit for connection to an IEEE 1394 network for use in descrambling a transport 
10 stream received over the network wherein the conditional access subunit, having 

descrambled the transport stream, introduces a local scrambling before retransmitting 
the transport stream to other subunits on the network, such that only authorised 
subunits on the network capable of local descrambling can receive the information in 
the transport stream, 

15 

In this way, once a conditional access subunit has descrambled a program, the 
program does not become available for unauthorised copying. It can be transported 
only to an authorised subunit on the network, for instance a television display. This 
system can also be used to ensure that a particular conditional access subunit can 
20 only be used in conjunction with other particular types of subunit with the same local 
descrambling capabilities. 

According to the present invention there is also provided a conditional access 
subunit for connection to an IEEE 1394 network having a tuner subunit, the 
25 conditional access subunit having means for periodically contacting the tuner subunit 
to request the received transport stream for a period of time sufficient to allow the 
conditional access subunit to update the entitlement management messages stored in 
the conditional access subunit 



30 In this way, even if a user does not operate the conditional access until for 

some time, such that entitlement information would have otherwise been missed, the 
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conditional access subunit automatically requests transport stream information 
periodically so as to obtain that entitlement information. 

The present invention will be more clearly understood from the following 
description, given by way of example only, with reference to the accompanying 
drawings, in which: 

Figure 1 illustrates a CA subunit; 

Figure 2 illustrates CA subunit logic connections; 

Figure 3 illustrates a CA subunit identifier descriptor; 

Figure 4 illustrates a system specification for use with the descriptor of Figure 

Figure 5(a) illustrates a C A status descriptor; 

Figure 5(b) illustrates a CA subunit status area info block; 

Figure 5(c) illustrates a source plug status area info block; 

Figure 5(d) illustrates a plug status info block; 

Figure 6 illustrates CA subunit commands; 

Figure 7(a) illustrates a CA enable control command; 

Figure 7(b) illustrates the broadcast system specific data of Figure 7(a); 
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Figure 7(c) illustrates an elementary PID definition of Figure 7(b); 
Figure S(a) illustrates a C A enable response; 
5 Figure 8(b) illustrates the broadcast system specific data of Figure 8(a); 

Figure 9 illustrates status or notify command structure, 
Figure 10 illustrates status or notify response structure; 

10 

Figure 1 1(a) illustrates a CA entitlement command; 
Figure 1 1(b) illustrates the broadcast system specific data of Figure 1 1(a); 
1 5 Figure 1 2(a) illustrates a C A entitlement response; 

Figure 12(b) illustrates the broadcast system specific data of Figure 12(a); 
Figure 13 illustrates a security control command; 

20 

Figure 14 illustrates command exchange between controller and CA subunit; 

and 

Figure 15 illustrates a satellite IRD connected to a network conditional access 
25 module. 

A requirement exists for a Conditional Access (CA) system that allows the 
manufacturer of a Digital Television Receiver (DTV) to access scrambled services 
from several broadcasters. This is achieved by defining a protocol that allows the 
30 CA system to reside on a module which can then be connected to the DTV allowing 
that DTV to access the service. A solution exists in the form of a PC Card connected 
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to a single receiver. However there exists a new requirement for a Networked 
Conditional Access Module (NCAM). The main requirements for this device are:- 



• flexible form factor 

5 • flexible access, for example peer to peer communication 

• flexible location 



This application proposes the format of the additional AV/C subunits that are 
required to implement the NCAM. The AV/C model for the NCAM will provide a 
10 conditional access system that is tailored for use on an TREE 1394-1995 based digital 
network 

The purpose of the Networked Conditional Access Module (NCAM) is to 
provide conditional access functionality. The NCAM uses a logical collection of 
15 resources that allow the descrambling of selected services to take place. The required 
resources for the NCAM can exist either in one location, for example inside a DTV, 
or be distributed throughout the la Home Digital Netwo± (IHDN). 

The NCAM relies on both existing and additional subunits. The existing 
20 subunits that the NCAM makes use of are:- 



Tuner subunit 
Panel subunit 



In order to implement a networked conditional access module on an TEflE 
1394 network, an AV/C subunit is defined for the conditional access module. In 
particular, a conditional access subunit models the core functionality of a 
descrambler. The CA subunit receives scrambled streams, descrambles them and 
then outputs a descrambled stream. The CA subunit may communicate with other 
required subunits via asynchronous commands across the IEEE 1394 network. 
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The Tuner subunit is used as the data source, the Panel subunit is used to 
provide information to the user and receive input from the user. The CA subunit 
contains the descrambling functionality and can make use of smart card and modem 
subunits. 



The resources that are required for an NCAM to function may be 
implemented privately within a single module. If a manufacturer wishes to develop 
an "NCAM with the smart card and modem functionality integrated for the exclusive 
use of the NCAM this is allowed. In such a case the NCAM would only implement 
the CA subunit and make use of the tuner and panel subunits in other devices. It is 
likely for security reasons that an NCAM would be implemented with a private smart 
card. The smart card subunit is included for when a smart card could be used for 
other applications, for example a data card or "electronic cash" card. 

The NCAM can also be implemented with distributed resources. In this case 
the CA subunit would work in conjunction with subunits embedded in other objects 
distributed throughout the digital network. 

Depending on the service to be descrambled, all or some of the resources will 
be required. In a simple system that relies on a Smart Card to be inserted to 
authenticate the service the modem is not required, a simple form of display device is 
required to prompt the user to insert the card but interaction is not necessary, A more 
complicated system, for example a pay per view (PPV) system* requires all of the 
resources to allow a choice of services to be presented to the user and to allow the 
user make a selection. Therefore die NCAM may operate with reduced functionality 
if not ail the required subunits are present 

Figure 1 illustrates the basic CA subunit 2. This can be a stand alone device 
or integrated into another device. 
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The C A subunit destination plug 4 is the input to the subunit 2. The signal 
format is compliant with the system(s) supported by the CA mechanism. The CA 
subunit destination plug 4 can connect either directly to the serial bus (1394) input 
plug or to the source plug of another suitable subunit; for example the input to the 
CA subunit could be a tuner subunit. 

The CA subunit source plug 6 is the output of the subunit 2. The signal format 
is compliant with the system(s) supported by the CA mechanism. The CA subunit 
source plug 6 can connect either directly to the serial bus output plug or to the 
destination plug of another suitable subunit 

A C A subunit that implements a single source and destination plug is 
potentially capable of descrambling one or more services within an isochronous 
channel from a single source, providing the C A system is compatible with the source 
material. 

Depending on the hardware capability of the CA subunit it is possible to 
implement multiple destination and source plugs. There are an equal number of 
source and destination plugs. Such a configuration allows a single CA subunit to 
provide descrambling of several independent streams/services at the same time. This 
model allows a very flexible, distributed AV network environment 

Thus, in other words, the CA subunit can receive different streams from one 
or more other subunits on the network, descramble them and re-route them to one or 
more other subunits as required. Any limitation is due principally only to bandwidth. 

When making connections between the C A subunit destination plug and 
either the serial bus input or another subunit the connection is established manually 
using a CONNECT command. This connection is made before issuing a CA 
command. If the CA subunit is operating in a stand-alone mode then the destination 
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and source plugs of the subunit can be permanently connected to the input and output 
serial bus plugs. 

If the CA subunit has an existing connection which has been locked and an 
5 additional connection is requested then a response of REJECTED is returned, if the 
connection is permanent then the conflicting command generates a response of NOT 
IMPLEMENTED. 

The CONNECT command is used to connect the CA subunit source plugs to 
10 either another subunit or the serial bus output plugs. 

All current connections of CA subunits are reported by the CONNECT status 
or CONNECTIONS status commands. This includes all permanent connections. A 
controller can determine if a connection is permanent by examining the "perm" flag 
15 of the responses for the CONNECT status and CONNECTIONS status commands. 

The connection of the CA subunit to other subunits is implementation 
specific. Whether it is logical to allow the connection of the CA subunit to certain 
other subunits is considered at implementation time. 

20 

A. CA subunit may be embodied inside a receiver, which is a device defined 
as one that contains a tuner subunit, or as a stand-alone device. Figure 2 illustrates 
how a C A subunit appears in a receiver 8; in a stand-alone device, there would likely 
be no antenna input plug (only 1394 serial bus and possibly "external" input plugs). 

25 
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The following table illustrates the various combinations of connections 
between a receiver unit and a CA subunit plugs and which ones are valid or not All 
invalid connections generate a response of NOT IMPLEMENTED. 



Noa CA Subunit Plug 


CA Subunit Plug 


Connection 
V*1K? 


Comment* 


Estenai antenna input plug 


CA destination plug 


NO 


X 


External antenna input plug 


CA source plug 


NO 


X 


External input plug 


CA destination, plug 


NO 


X 


External input plug 


CA source plug 


NO 


X 


External output plug 


CA destination plug 


NO 


X 


External output plug 


CA source plug 


NO 


X 


Serial bus input plug 


CA destination plug 


YES 


This connection must be 

created using a 
CONNECT command, or 
it may be a permanent 
connection 


Serial bus input plug 


CA source plug 


NO 


X "" 


Serial bus output plugs 


CA destination plug 


NO 




Serial bus output plugs 


CA source plug 


YES 


This connection must be 

created using a 
CONNECT command, or 
it may be a permanent 
connection 


Subunit source plug 


CA destination plug 


YES 


This connection must be 

created using a 
CONNECT command, or 
it may be a permanent 
connection 


Subunit source plug 


CA source plug 


NO 


X 


Subunit destination plug 


C A destination plug 


NO 


X 


Subunit destination plug 


CA source plug 


YES 


This connection must be 

created using a 
CONNECT command, or 
it may be a permanent 
connection 



When issuing the CONNECT Command the lock bit is used to ensure that 
connections are not broken by third parties, 

The CA subunit can handleboth full and partial transport streams. It is beneficial 
25 for the source to create a partial transport stream containing the elements of the service 
it wishes descrambled in order to save bandwidth on the bus. In the case where apartiai 
transport stream is created and the EMMs (Entitlement Management Messages) are 
embedded in the transport stream, the source includes the EMMs in the partial transport 
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stream. It will not be possible for the C A subunit to descramble the desired services If 
the data contained in the EMMs is not present 

The C A system is used to prevent unauthorised access to broadcast material. 
Once thematerial ha$ been descrambled, it can be protected when carried over the IHDN 
(In Home Digital Network). In particular, the CA subunit can implement a suitable 
Copy Protection system on both its destination and source plugs. 

The CA subunit is provided with a subunit identifier. For each particular CA 
subunit, thesubunitidentifier describes the characteristics of the broadcast system(s) and 
CA system(s) supported by that CA subunit More than one broadcasting system and 
CA system may be supported by a particular CA subunit. With the use of this 
information, other subunits on the network, particularly, the controller, will know how 
each CA subunit may be used. 

Figure 3 illustrates the subunit dependent information which b contained within 
the subunit identifier descriptor. 

The CAjubunitJependenfjnfoJiekbjength field specifies the number of 
bytes for the non-info block fields of the subunit dependent information; in this case, 
through the system_specification[n-l]. 

A controller on the network preferably finds any number of information blocks 
following this field, such that the CA subunit dependent information can be extended 
inthefuture. Controllers can easily determine if any info blocks exist here by comparing 
theC^fe*Kft Jteldsjengthfields, 
If the following formula is true: 

CA_subunit_dependentJength > (CA_subunit_dependent_info_fields Jength 
+ 2) then info blocks exist in this structure. 

The CA^subunitjversion field indicates the version number of CA subunit 
command specification that the CA subunit conforms to. The upper 4 bits show the 
major version number and the lower 4 bits the minor version number. 
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CA subunit version 


meaning 




Version 1.0 of the CA sutamit specification 


all others 


Reserved for future specification 



5 

The number j>/_systems field specifies how many broadcast systems are 
supported by this CA subunit 

The system ^specification field describes each broadcast system and is illustrated 
10 in Figure 4. 

The specification Jength field indicates the size, in bytes of the entire 
systeM_$pecification structure. 

15 The system Jd field indicates a broadcast system that the C A subunit 

supports. The following broadcast systems are currently defined; 



20 



system id 


name 




DVB 


Other values 


reserved 



The implementation jurofilejd field specifies the profile ID of the CA subunit 
for this system Jd A C A subunh may be implemented with a different profile for each 
25 of the broadcast systems that it supports. There is one profile for each supported system. 
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The following profiles are defined: 



unplemeotation profile id ~ 
E0.6 


meamng 

conforxnaat^lementation - a CA subunit with this 

* t F* w ***« Was GZCSIGa O0SCQ on the AV/C CA 

Specification version 1.0. The set of features (commands and daia 
struanrts) supported by fins implementation is defined by the 
manufacturer. This profile ID applies to all broadcast systems. 


El w 


conforman^follJnylemcQtation - a CA subunit with ibis profile 
implementation is as described above, bm it implements all of the 
commands and relevant data structures for the specified broadcast 

syst^defmedmtheAV/CCASpecificarionversioii 1.0. This 
profile ID applies to all broadcast systems. 


All othervalues 


reserved for future specification in this AV/C CA Specification 



The numberj>fSA_syst m jd5 field indicates the number of CA systems the 

C A subunit is compatible with. 

The CAjymmJd fields identify a particular CA system. The values for 
CAjysiemjd are systemic dependent and in the DVB case they are defined in pr ETS 
30<M68S P eci fica tionforSe^ 

Systems. The CA_sys t emJdJ ength fi e i d defmes ^ lengm ^ ^ rf ^ 

CAsystemJd field. 

For each CA subunit, there is also a CA status descriptor. This holds 
information about the CA subunit in general, and about the information that is on each 
of m source plugs. The data held within this stmcture Adynamic and is kept up to date 
by the CA subunit A controller may examine this structure in order to determine the 
operational status of the CA subunit and its source plugs. 
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The general format of the C A status descriptor is shown in Figure 5(a), 



The descriptor length is the number ofbytes for the C A subunit status descriptor 
structure, not including the descriptorjertgth field 

The C A subunit status area info block is illustrated separately in Figure 5(b) and 
the source plug status area info block is illustrated separately in Figure 5(c). 

The general C A subunit status area info block contains status information about 
the CA subunit that is not specific to a particular destination or source plug. 

The compoundjength field specifies the number ofbytes for the remainder of 
this information block (including any nested information blocks which may occur after 
the last well defined field). 

The primary Jieldjength is the number ofbytes for the remaining fields. 

The available Jymdwidthjupper miavcd fable JbandwidihJ^ 
together and indicate the bandwidth capacity the CA subunit has available. The 
available Jbandwidthjtppet field indicates the integer amount of bandwidth available 
in Mbps, The availabIeJ)andw?dthJowerindicdXe$ the fractional amount of bandwidth 
available in Mbps. 

For example, if the CA subunit has 34.8Mbps of bandwidth available it would 
be represented as follows. 

available_bandwidth_upper = 00 22^ 
available Jtartdwidthjower - 08 w 
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The values of OF FF^ for availablejbandwidthjipper and FF K for 
available J>andwidtkJower are reserved and indicate that the CA Subunit cannot 
determine the amount of available bandwidth. 



5 ThisaUcnvsadevicesuchasatunersubu^ 

has enough spare capacity for additional services to be descrambled. If the CA subunit 
can support the simultaneous descrambling of multiple services from multiple sources 
then the available J>andwidth can be read in conjunction with the 
destination jlug^staius fields to allow a controller to determine whether it is able to 

1 0 connect an additional source to the C A subunit 



With respect to the source plug status area info block of Figure 5(c) 7 the number 
of source plugs field specifies the number of source plugs on the particular subunit and, 
hence, the number of plug status info block structures that are nested in this info block, 
IS The structures are located sequentially and not nested inside of each other. Most CA 
units will have only one source plug. 

The plug status info block (x) fields are illustrated separately in Figure 5(d) and 
provide status information for each of the source plugs. There is one of these structures 
20 for each source plug on the CA subunit, even if the plug currently has no status 
information to report. As shown, the fields are each split into two general areas. 

The source jplug field indicates the actual source plug number. 



25 The destination j?lug field indicates the destination _plug number that this 

source _plug is relevant to. 
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The status field describes the current situation of flic source jplug according to 
the table below. 



value 


status description 




No information instances are on the specified source plug. 


io 16 


A descrambled version of the service(s) requested for 
descramblbg is(are) currently on the specified source plug. 




A descrambled version of the service($) requested should be on 
the specified source plug, however it is (they are) not currently 
on the plug. 



Case 1 0 16 is used when die CA subunitis functioning correctly and is outputting 
the requested service in a descrambled state. Case 20,« is used when the CA subunit has 
responded that it can descramble the selected service but at present the descrambled 
service is not available on the plug. 



The CA subunit Status descriptor is specific to the CA subunit type; it has the 
following type value. 



descriptorjtype 


meaning 


80 l6 


CA Status Descriptor 



The descriptor Jypejspecific_referena; field does not exist because there is 
only one C A status descriptor for a CA subunit. 

The CA subunit model does not feature any object lists. 
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The CA subunit commands are illustrated in Figure 6, 



PCT/GB99/01392 



CA Enable 

5 The CA enable command is used to instruct the CA suburdt as to which 

service it should descramble. The command is broadcast specific. The CA enable 
control command is illustrated in Figure 7(a) with the broadcast systems specific data 
illustrated in Figure 7(b) and the elementary PED definition illustrated in Figure 7(c), 



10 The system Jd field denotes which broadcast system the following command 

relates to. The following systems are currently defined: 



system id 


name 




DVB 


Other values 


reserved 



The broadcast jystem_specijicjkttaf\t\i contains operands that are specific to 
the system being used. 

For the DVB System the operands of Figure 7(b) fully specify the service to 
20 be descrambled. The PID (Packet Identifier) for each component of the service is 
identified. 

If one of the component subunits of a controller is a tuner submit then the 
controller has the service Jd and PED values available to it privately. However, if a 
25 controller wishes to make use of another suitable receiving device then the controller 
must inspect the service and component descriptors of the tuner subunit in the 
receiving device. The controller must define the PIDs of the components of the 
desired service. 
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A separate CA_ENABLE command is sent for each service that is to be 
descrambled. The action field is used to update the list of selected services stored in 
the CA subunit. The following values are defined. 



action 


value 


add 




update 


10* 


remove 




remove all 




reserved 


Other values 



When action is set to "add" the selected service is added to the list of services 
selected for descrambling. "update" indicates that a selected service should be modified 
in some way. Since the list management commands only act at the program level, any 
changes at the elementary stream level in an existing service must be signalled by an 
'update 1 command with the complete elementary stream list re-sent, "remove* 1 allows one 
service to be deleted from the list M remove_air is used when the descrambling of all 
services is no longer required. 



20 The service Jd field specifies the service to which the program jnap_PID is 

applicable. 

The number of jelmentary^IDjkfinitions field indicates the number of 
following elementary JPID fields. 

25 

Each of the elementary PID fields correspond to the example illustrated in Figure 

7(c), 



The streamjype field identifies the type of service element carried within the 
packets with the PE) whose value is specified by the elementary J>ID. The values are 
defined in table 2-29 of ISP/IEC 13818-1 Generic Coding of Moving Picture and 
Associated Audio Systems. 
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The elementary J>ID field specifies the FID of the transport stream packets that 
carry the associated service element 

Having received a CA enable control command, the CA subunit will produce a 
5 response as illustrated inFigure 8(a), with the broadcast systems specific data illustrated 
in Figure 8(b). 

The operands have the same meaning as for the CA enable control command and 
the response format is the same as for the control command with the addition of the 
10 status operand. 

In the case where the action is "add" or "update" and the CA enable command 
is successful, the response will be ACCEPTED, status can take on the following values. 
The value of status reflects the action. 

15 



action 


status 


Value 


add 


descramhling 




add 


descranabling possible under conditions (purchase dialog) 




add 


desctairibiiag possible under conditions (technical dialog) 


w w 


update 


descrambliflg 




update 


desctambling possible tinder conditions (purchase dialog) 


Hw 


update 


desaairibling possible under conditions (technical dialog) 


12* 


remove 


reinovejsuccessful 


20 w 


remove all 


remove successful 


30„ t 



25 

In the case where an add or update command is successful then the response 
is scrambling However there may be some cases where it is theoretically possible to 
descramble the service but there are certain conditions that must first be satisfied, The 
scrambling possible under conditions messages are returned in this case. There are two 
30 types of conditional responses, urchase dialogue and echnical dialog Both dialogs 
require an interaction with the user via the man machine interface (MMI). 
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The purchase dialog is required, for example, where the user has requested 
a pay per view service. Here a dialog with the user might be required to confirm the cost 
of the service before viewing can commence. 



5 The technical dialog is required when there is a technical issue to overcome 

before the CA subuuit can determine whether it i$ possible or not to descramble the 
service. This could occur, for example, when the user needs to insert the smart card. 

In the case where the CA JIN ABLE command is unsuccessful the response 
10 frame will use the response code of REJECTED. The status field will take on the 
following values to reflect the nature of the error. The value of status reflects the action. 



action 


status 


Value 


add 


descrambling not possible 


so* 


add 


desaambling not possible (because no entitlement) 


81* 


add 


desaambling not possible (for technical reasons) 


82 w 


add 


desaambling not possible (Insufficient bandwidth in CA subtmit) 




add 


desaambling not possible (Incompatible CA system) 


84« 


update 


descnanblrag notpossible 


*>i« 


update 


descxambling not possible (because no entitlement) 


91,6 


update 


desaambling not possible (for technical reasons) 




update 


desaambling not possible (Insufficient bandwidth in CA subunit) 


»« 


update 


descrambling not possible (Incompatible CA system) 




remove 


remove failed -service not present 


A0 Itf 


remove 


remove failed - unknown reason 




remnve_all 


remove failed - service not present 


B0 16 


remove all 


remove failed - unknown reason 





The C A enable command can also be sent with a ctype of STATUS and 
30 NOTIFY. These are signified by *S* and "N" in Figure 6. The status and notify 
command frames have the same form as the control command. The command is 
used to determine whether the CA subunit is capable of descrambling the selected 
service. The broadcast system specific data for DVB systems specific operand is 
illustrated in Figure 9. The fields are the same as for the control command. 
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In response to a CA enable status and notify command, the CA subunit 
makes a response. The broadcast system specific data for the DVB system specific 
operands is illustrated in Figure 10. 



The fields are (he same as for the COMMAND response with the 
exception of the status field, which can take the values defined below. The "remove" 
action is not valid for STATUS or NOTIFY commands. 



action 


status 


Value 


add 


descramblmg will be possiblt 




add 


descramblmg will be possible under conditions (purchase dialog) 


0l« 


add 


descramblmg will be possible under conditions (technical dialog) 




update 


descrambling will be possible 


10:5 


update 


descrambling will be possible under conditions (purchase dialog) 




update 


descrambling will be possible under conditions (technical dialog) 




add 


descrambling vM not bepossible 


so* 


add 


descramblmg will not be possible (because no eniMement) 


*1 16 


add 


descrambling will not be possible (for technical reasons) 




add 


descrambling will not be possible (Insufficient bandwidth in CA subunit) 




add 


descrambling will not be possible (Incompatible CA system) 




update 


descrambling will not be possible 


«0» 


update 


descrambling will not be possible (because no entitlement) 


«w 


update 


descrambling will not be possible (for technical reasons) 




update 


descramblmg will not be possible (Insufficient bandwidth in CA subunit) 


93 !6 


update 


descrambling will not be possible (Incompatible CA system) 





CA Entitlement 

The C A entitlement command may be used by EPG (Electronic Program 
Guide) applications to interrogate the CA subunit in order to determine what 
entitlement the user has to services found in the electronic program guide. For 
instance, when displaying the EPG, having interrogated the CA subunit to determine 
what programs can be descrambled, the EPG can indicate which of die programs the 
user is able to view. The command can be used with a ctype of STATUS and 
NOTIFY. This command does not prevent EPG and CA applications from the same 
or cooperating suppliers to develop private means of passing entitlement information. 
This command can be used by independent EPGs to interrogate CA modules . . 
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The CA entitlement command is illustrated in Figure 1 1(a) with the 
broadcast systems specific dataforthe DVB system being illustrated in Figure 11$), 

The system ID field has the same meaning a$ for the CA enable command. 

The operands network ID, original network ID, transport stream ID, 
5 service ID and event ID specify the service that the entitlement query is for. The 
event ID is fully qualified by the other location identifiers in the service information. 

In response to a CA entitlement command, the CA subunit issues a 
response illustrated by Figure 12(a) with the broadcast system specific data for the 
DVB system illustrated in Figure 12(b). 

10 The operands networkjd, original f network Jd, transpori_streamjd, 

service Jd and event Jd are the same as for the command. The entitlemeni_status 
field denotes the whether or not the user has entitlement to the selected service. 



20 



value 


entitlement_statu$ 


Description 


00 


entitlement unknown 


Hie CA subunit cannot determine the entitlement status for this 

service 


01 


entitlement available 


Entitlement for this service is currently available 


02 


entitlement not 
available 


Entitlement for this event is not currently available and cannot be made 
available by any user dialogue with the CA subunit 


03 


user dialogue 
required 


Entitlement is not currently available but couidbe made available after 
a user dialogue with the CA subunit 


04 


user dialogue 
complete unknown 


The user dialogue is complete the entitlement is unknown 


05 


user dialogue 
complete available 


The user dialogue is coinplete and entitlement has been granted 


06 


user dialogue 
complete not 
available 


Hie user dialogue is complete and entitlement has not been granted 


other 
values 


reserved 


The rexnaining values are reserved for future use 



25 
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Securitv 

Although the concept of the CA Subunit is to allow generic receivers to 
work with multiple CA systems there may be some cases when a service provider 
5 will wish to associate a certain CA Subuait with a certain IRD (Integrated Receiver 
Decoder). In this case authentication is used between the CA Subunit and the IRD to 
ensure that each device only works with its respective partner. 

The SECURITY command is illustrated in Figure 13 and is independent of 
10 broadcast system as it is uniquely defined for each application. The authentication 
protocol is a process whereby the IRD and CA Subunit pass between themselves control 
codes to allow each device to satisfy itself that the other is genuine. The authentication 
protocol could be as simple as transferring two known keys between the devices or a 
more complex key exchange based upon, for example, public key protocols. 

15 

The category field defines the authentication and key exchange protocol that 
is used in the following category dependant field. 

Implementation 

20 

The following provides an explanation as to how the CA Subunit can be 
implemented and the procedure that can be followed to make use of the CA Subunit 

The NCAM is a logical collection of subunits that provide the required 
25 functionality to implement a networked conditional access system. The CA subunit is 
the core of the system and relies on other subunits to provide a source and sink for the 



*0 99/57860 PCT7CB99/01392 

-25- 

material that requires descrambling and communication with both the user and outside 
world. As such the CA subunit should be aware of the tuner subunit aad panel subunit 



The NCAM can be implemented with only the tuner, C A and Panel subunits; 
5 thes e are the minimum requirements. The resources thatthe C A system may also require 
such as a modem and/or smart card reader can be implemented and accessed privately 
when they form part of the same unit. 

The procedure for decoding a scrambled transport stream is described with 
10 referenceto Figure 14. The following assumes that the tuner subunitwill be the source 
of the scrambled stream, either an off air signal via a suitable front end or directly from 
the demux via an alternative source such as a DVCR. The user will a make a channel 
selection and the tuner subunit will detect that the stream is scrambled, 

1 5 The controller can make an intelligent prediction as to which CA subunit to 

use bas ed upon the CA m systemjdf\tiL& from the transport stream and CA^jystemJd of 
the CA subunit. For example inFigure 1 5 satellite IRD is connected to a CA Subunit via 
1394. 



20 The controller establishes an isochronous channel between the tuner and CA 

subunits to transmit the scrambled service to the CA subunit A second channel from the 
C A subunit to the desired sink, this can be the unit that originates the scrambled source 
material or a separate unit, is set up. The SC Copy Protection system or any otiier 
suitable alternative copy protection mechanism can be used to protect the descrambled 

25 transport stream from unauthorised copying. 

The controller then sends the CA_ENABLE command to inform the CA 
subunit of which service or services it would like descrambled. When the CA subunit 
receives the CAJENABLE command it determines whether or not it is capable of 
3 0 descrambling the selected service. This may involve setting up a dialogue with the user 
to determine whether they are prepared to pay for the service or request them to insert 
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their bank card or pin number. Some communication with the outside world via the 
modem may be required. 

If following the user dialogue the CA subunit is capable of descrambling the 
selected services it updates its internal status registers and starts output the descrambled 
data. 

Due to the nature of AV/C commands whereby each command requires a 
response, if the original C AMENABLE command is met with a REJECTED response 
due to a user or technical dialogue being required then once the dialogue is resolved the 
controller willnotknowthe outcome. Therefore if a CA JENABLE command is rejected 
for dialoguereasons then the controller should send aNOTIFY command to beinfoimed 
when the state of the CA subunit changes, 

EMM Handling 

In some implementations of a DTV receiver the CA module can receive 
EMMs whilst the DTV is in standby and on power states. This allows the CA module 
to continually update the entitlement that the user has. 

In a network environment the TS must be routed to the CA subunit to allow 
the subunit to process the EMM packets. This means that if the CA subunit remains 
powered off or a TS is not connected to it for a period of time then the entitlement stored 
in the C A subunit may become out of date. Therefore at periodic intervals the CA 
subunit should contact the toner subunit and request the TS for aperiod of time to allow 
it to update the EMMs, This should be done at times when the user experience will not 
be compromised. The controller should ensure that the channel is not changed while the 
user is watching a particular service. 
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The benefit of using a CA subunit in a network where a tuner subunit also 
exists comes when the controller is external to both the unit that contains the tuner 
5 subunit and the unit that contains the CA subunit. This allows the controller to discover 
the services that the tuner subunit is capable of receiving and can instruct the CA subunit 
to descramble a number of these services. 

In some cases the C A subunit will exist in a network where there is no tuner 
1 0 subunit. In this case in order for a device to make use of the CA subunit the controller 
must exist in the same unit as that of the signal source. The controller must be capable 
of privately inspecting the transport stream and determining the PBDs of the elements 
of the service it wishes descrambled. Again the EMM stream must be included with the 
PIDs of the elements that are to be descrambled. 



15 
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CLAIMS 

1 . A conditional access subunit for connection to an IEEE 1394 
network, the subunit including: 

means to receive AV/C Conditional Access Commands over the IEEE 
5 1394 network from another subunit; and 

means to transmit AV/C responses over the IEEE 1394 network in 
response to the received AV/C Conditional Access Commands, 

2. A subunit for use with a conditional access subunit on an IEEE 
1394 network, the subunit including: 

10 means to transmit AV/C Conditional Access Commands over the IEEE 

1394 network to the conditional access subunit and 

means to receive AV/C responses from the conditional access subunit over 
the IEEE 1394 network in response to the transmitted AV/C Conditional Access 
Commands. 

15 3 . A method of providing a Conditional Access Module on an IEEE 

1394 network, the method comprising: 

defining a Conditional Access Module as a Conditional Access Subunit of 
the DEEE 1394 network; 

providing AV/C Conditional Access Commands to allow communication 
20 between the Conditional Access Subunit and other Subunits on the network, 

4. A subunit according to claim 1 
wherein the AV/C Conditional Access Commands include a CA enable command. 



5, A subunit according to claim 4 wherein the AV/C op 

code for the CA enable command is CC W . 
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6. Asubunit according to claim 4 herein thcCA 
enable command includes a system ID for identifying the broadcast system to which 
the command relates, 

7. Asubunit according to claim 4 wherein CA 
enable control commands include an action operand which is able to represent at 
least add, update, remove and remove all actions. 

8. Asubunit according to claim 4 wherein 
CA enable control command responses include an action operand corresponding to 
the action operand of a received CA enable control command and a status operand 
wherein, for an action operand representing an add action, the status operand is able 
to represent at least descrambling, descrambling possible under conditions (purchase 
dialogue) and descrambling possible under conditions (technical dialogue), for an 
action operand representing an update action, the status operand is able to represent 
at least descrambling, descrambling possible under conditions (purchase dialogue) 

s 

and descrambling possible under conditions (technical dialogue status), for an action 
operand representing a remove action, the status operand is able to represent at least a 
remove successful status and, for an action operand representing a remove all action, 
the status operand is able to represent at least a remove successful status. 

9. Asubunit according to. claim 4 wherein 
CA enable status and notify commands include an action operand able to represent at 
least one of an add, update, remove and remove all action- 

10. Asubunit* according to claim 9 wherein CA 
enable status and notify command responses include an action operand 
corresponding to the action operand of the CA enable status and notify command and 
a status operand wherein, for an action operand representing an add action, the states 
operand is able to represent at least one of descrambling will be possible, 
descrambling will be possible under conditions (purchase dialogue), descrambling 
will be possible under conditions (technical dialogue), descrambling will not be 
possible, descrambling will not be possible (because no entitlement), descrambling 
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will not be possible (for technical reasons), descrambling will not be possible 
(insufficient bandwidth in CA subunit) and descrambling will not be possible 
(incompatible CA system) and for an action operand representing an update action, 
the status operand is able to represent at least descrambling will be possible, 

5 descrambling will be possible under conditions (purchase dialogue), descrambling 
will be possible under conditions (technical dialogue), descrambling will cot be 
possible, descrambling will not be possible (because no entMementX descrambling 
will not be possible (for technical reasons), descrambling will not be possible 
(insufficient bandwidth in CA subunit) and descrambling will not be possible 

10 (incompatible CA system), 

1L A subunit according to t claim 4, 

wherein the CA enable command includes a service ID operand for specifying the 
service to which the program map PID is applicable. 

12. A subunit according to claim 4 

1 S wherein the CA enable command includes an operand for specifying the number of 
elementary PID definitions to follow, together with operands including elementary 
PID definitions, 

13. A subunit according to claim 12 wherein each of the 
elementary PID definitions include a stream type operand for identifying the type of 

20 service element earned within the packets with the PID whose value is specified by 
the elementary PID and elementary PID operands for specifying the PID of the 
transport stream packets that cany the associated service dement 

14. A subunit accordingto claim 1 wherein the 
AV/C Conditional Access Commands include a CA entitlement command 



25 



15, A subunit according to claim 14 wherein the AV/C 

opcode for the CA entitlement command is CD U , 
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16. A subunit according to claim 14 . wherein the CA 
entitlement command includes a system ID for identifying the broadcast system to 
which the command relates. 

17. A subunit according to claim 14 wherein the 
CA entitlement command includes operands defining broadcast systems specific 
data. 

IS. A subunit according to claim 17 wherein the broadcast 

systems specific data is able to represent at least the network ID, the original network 
ID, the transport stream ID, the service ID and the event ID. 

19. A subunit' according to claim 14.. 
wherein, for a CA entitlement command response, the response has an operand able 
to represent entitlement status. 

20. A subunit according to claim 1 9 wherein the entitlement 
status operand is able to represent at least entitlement unknown, entitlement 
available, entitlement not available, user dialogue required, user dialogue complete 
unknown, user dialogue complete available and user dialogue complete not available. 

21. A subunit according to claim 1 wherein the 
AV/C Conditional Access Commands include a security command. 

22. A subunit according to claim 21 wherein the AV/C 
opcode for the security command is 0F W . 

23. A subunit according to claim 20 wherein the 
security command includes operands for defining authentication and key exchange 
protocols. 
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24. Asubuait .according to claim 21 wherein the 
subunit will only transmit data once it has received appropriate authentication from 
the receiving subunit. 

25. A conditional access subunit for connection to an IEEE 1394 
5 network for use in descrambling a transport stream received over the network 

wherein the conditional access subunit, having descrambled the transport stream, 
introduces a local scrambling before retransmitting the transport stream to other 
subunits on the network, such that only authorised subunits on the network capable 
of local descrambling can receive the information in the transport stream. 

10 26. A conditional access subunit for connection to an IEEE 1 3 94 

network having a tuner subunit, the conditional access subunit having means for 
periodically contacting the tuner subunit to request the received transport stream for a 
period of time sufficient to allow the conditioned access subunit to update the 
entitlement management messages stored in the conditional access subunit 

15 27. An IEEE 1394 network including a conditional access subunit 

according to claim 26, a tuner subunit and a control subunit wherein the control 
subunit ensures that the request from the conditional access subunit to the tuner unit 
does not cause the tuner unit to change channel while a user is making use of a 
particular service. 

20 28. A tuner device having an embedded conditional access subunit 

according to claim 1 
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DECLARATION FOR PATENT APPLICATION (JOINT OR SOLE) 
> (Under 37 CFR § 1,63; with Power of Attorney) 

FROMMER LAWRENCE & HAUG LLP flh File No. 450110-02873 

As a below named inventor, I hereby declare that: 

My residence, post office address and citizenship are as stated below next to my name, 

I believe I am the original, first and sole inventor (if only one name is listed below) or an original, first 
and joint inventor (if plural names are listed below)* of the subject matter which is claimed and for which a patent is 
sought on the invention ENTITLED: 

NETWORKED CONDITIONAL ACCESS MODULE 



the specification of which 

is attached hereto. 

X was filed on 5 May 1999 as International Application Serial No. PCT/GB 99/01392 f 

with amendment (s) through „ (if applicable, give dates). 

I hereby state that I have reviewed and understand the contents of the above- identified specification, including 
the claims, as amended by any amendment referred to above. 

I acknowledge the duty to disclose to the United States Patent and Trademark Office all information known to me 
to be material to patentability as defined in Title 37, Code of Federal Regulations, Sec. 1.56. 

I hereby claim foreign priority benefits under Title 35, United States Code, § 119 of any foreign application(s) 
for patent or inventor's certificate listed below and have also identified below any foreign application for patent or 
inventor's certificate having a filing date before that of the application on which priority is claimed: 

Prior Foreign Appl ication(s) [list additional applications on separate page]: Priority C laimed: 
Number: Country: Filed (Day/Month/Year): Yes No 

PCT/GB99/01392 PCT 5 May 1999 X 

'I I hereby claim the benefit under Title 35, United States Code, § 120 of any United States application(s) listed 

.'^below and, insofar as the subject matter of each of the claims of this application is not disclosed in the prior United 
^States application in the manner provided by the first paragraph of Title 35, United States Code § 112, I acknowledge the 
Ofcjuty to disclose to the United States Patent and Trademark Office all information known to me to be material to 
% jaatentabUity as defined in Title 37, Code of Federal Regulations, Sec. 1.56, which became available between the filing 
s'ldate of the prior application and the national or PCT international filing date of this application: 
'2 1 Prior U.S. Application(s) [List additional applications on separate page]: 

Appln, Ser. Number: Filed (Day/Month/ Year): Status (patented, pending, abandoned): 



£>k§ I hereby appoint WILLIAM S. FROMMER . Registration No. 25.506 . and DENNIS M. SMID . Registration No. 54.950_ 

or their duly appointed associate, my attorneys, with full powe? ot substitution and revocation, to prosecute this 
application,' to make alterations and amendments therein, to file continuation and divisional applications thereof, to 
receive the Patent, and to transact all business in the Patent and Trademark Office and in the Courts in connection 
therewith, and specify that all communications about the application are to be directed to the following correspondence 
'J; address 




UILLIAM S. FROMMER Esq. 
c/o FROMMER LAWRENCE & HAUG LLP 
745 Fifth Avenue 
New York, New York 10151 



Direct all telephone calls to: 

(212) 588-0800 

to the attention of: 

WILLIAM S. FROMMER 



I hereby declare that all statements made herein of my own knowledge are true and that all statements made on 
information and belief are believed to be true; and further that these statements were made with the knowledge that 
willful false statements and the like so made are punishable by fine or imprisonment, or both, under Section 1001 of 
Title 18 of the United States Code and that such willful false statements may jeopardize the validity of the application 
^ or any patent issued thereon. 

p INVENTOR(S): /f? T ft if fife 

' Signature: l K ' ^ !>OW}^ Date: S ( 11 1 C 

r: $1 



Signature: / ' ' W <-^rr^. uate: / i 00 

Full name of sole or first inventor: fiAflHARn JOHN RAKRV 

Residence: lg gT qab^els LEAV CHINEHAM, BASINGSTOK E, HAMPSHIRE , RG24 8RE, UNITED KINGDOM 

0 crr ™ ..... ™l 

Full name of 2nd joint inventor (if any): ADRIAN CHARLES PA SKINS . ' 

Citizenship: 14 STRATTON ROAD, CRAN BOURNE , BASINGSTOK E, HAMPSHIRE, RG21 3NZ, UNITED KINGDOM 

BRITISH G bX 

Signature: — — Date: _ 

Full name of 3rd joint inventor (if any): 

Residence: 

Citizenship: 

[Similarly list additional inventors on separate page] 

Post Office Address(es) of inventor(s): SONY UNITED KINGDOM LIMITED 

[if all inventors have the same post office address] The Heights, Brook lands 

Weybridge KT13 OXW, England, United Kingdom 

Note: In order to qualify for reduced fees available to Small Entities, each inventor and any other individual or entity 
having rights to the invention must also sign an appropriate separate "Verified Statement (Declaration) Claiming [or 
Supporting a Claim by Another for] Small Entity Status" form [e.g. for Independent Inventor, Small Business Concern, 
Nonprofit Organization, individual Non- Inventor] . 

Note: A post office address must be provided for each inventor. 
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